CVE-2014-1578 — Improper Restriction of Operations within the Bounds of a Memory Buffer in Mozilla Firefox

CWE-119 — Improper Restriction of Operations within the Bounds of a Memory Buffer CWE-787 — Out-of-bounds Write9 documents8 sources

Severity

7.5HIGHNVD

EPSS

1.6%

top 18.00%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Webmproject Libvpx Mozilla Firefox Mozilla Thunderbird

Timeline

PublishedOct 15

Latest updateMay 17

Description

The get_tile function in Mozilla Firefox before 33.0, Firefox ESR 31.x before 31.2, and Thunderbird 31.x before 31.2 allows remote attackers to cause a denial of service (out-of-bounds write and application crash) or possibly execute arbitrary code via WebM frames with invalid tile sizes that are improperly handled in buffering operations during video playback.

CVSS vector

AV:N/AC:L/C:P/I:P/A:PExploitability: 10.0 | Impact: 6.4

Affected Packages3 packages

▶NVDmozilla/firefox32.0+3

▶NVDmozilla/thunderbird31.0, 31.1.0+1

▶Debianwebmproject/libvpx< 1.3.0-3+3

🔴Vulnerability Details

GHSA

GHSA-9cqr-wh6w-m3fc: The get_tile function in Mozilla Firefox before 33↗2022-05-17

▶

OSV

CVE-2014-1578: The get_tile function in Mozilla Firefox before 33↗2014-10-15

▶

CVEList

CVE-2014-1578: The get_tile function in Mozilla Firefox before 33↗2014-10-15

▶

📋Vendor Advisories

Ubuntu

Thunderbird vulnerabilities↗2014-10-15

▶

Ubuntu

Firefox vulnerabilities↗2014-10-14

▶

Red Hat

Mozilla: Out-of-bounds write with WebM video (MFSA 2014-77)↗2014-10-14

▶

Debian

CVE-2014-1578: libvpx - The get_tile function in Mozilla Firefox before 33.0, Firefox ESR 31.x before 31...↗2014

▶

💬Community

Bugzilla

CVE-2014-1578 Mozilla: Out-of-bounds write with WebM video (MFSA 2014-77)↗2014-10-14

▶